documentation.HELP! Microsoft AntiXSS Library Documentation

HtmlFormUrlEncode Method (String)

Microsoft AntiXSS Library

previous page next page

Collapse AllExpand All      Code: All Code: Multiple Code: C# Code: Visual Basic Code: Visual C++

C#Visual Basic
Visual C++

Microsoft AntiXSS Library

Encoder..::..HtmlFormUrlEncode Method (String)

Encoder Class See Also

Encodes input strings for use in application/x-www-form-urlencoded form submissions.

Namespace: Microsoft.Security.Application
Assembly: AntiXssLibrary40 (in AntiXssLibrary40.dll) Version: 4.2.0.0

Syntax

C#
public static string HtmlFormUrlEncode( string input )

Visual Basic
Public Shared Function HtmlFormUrlEncode ( _ input As String _ ) As String

Visual C++
public: static String^ HtmlFormUrlEncode( String^ input )

Parameters

input

Type: System..::..String
String to be encoded.

Return Value

Encoded string for use in URLs.

Remarks

This function encodes all but known safe characters. Characters are encoded using %SINGLE_BYTE_HEX and %DOUBLE_BYTE_HEX notation. Safe characters include:

a-z	Lower case alphabet
A-Z	Upper case alphabet
0-9	Numbers
.	Period
-	Dash
_	Underscore
~	Tilde

Example inputs and encoded outputs:

alert('XSS Attack!');	alert%28%27XSS+Attack%21%27%29%3b
[email protected]	user%40contoso.com
Anti-Cross Site Scripting Library	Anti-Cross+Site+Scripting+Library

See Also

Encoder Class

HtmlFormUrlEncode Overload

Microsoft.Security.Application Namespace

(c) 2008, 2009, 2010, 2011 Microsoft Corporation. All rights reservered.

previous page start next page

Get in touch

Submit feedback about this site to:

• [email protected]